how can i close port 3306.. I was told people can hack into my server through mysql on port 3306

you should close all ports, by default, and you can run mysql locally only

do you have a firewall?

how can i go at doing that.. by turning iptables off ?

yes, firewall should default to everything blocked, then open only what you need. No, you need iptables running for your firewall

I did iptables -A INPUT -p tcp -d 3306 -j REJECT

I guess I just said all that for nothing

I just googled it and thats what it said to do

Did you read _any_ of what I typed?

yes

You can run mysql on the localhost only, if you don't need to connect from another box, besides the firewall issue

i dont know how to do that

bind-address = 127.0.0.1, in my.cnf, and no external addresses

OK, thank you!

Sorry to bother you again, but do you know where I can find the keyboard shortcuts file for x/gnome/ubuntu? I need to edit it manually.

No, you've already asked me that

Alright, sorry. yeah, I asked a few guys yesterday. no one seems to know, which I find odd.

What does amavisd-new do exactly? The website isn't that clear.

Something to do with xset and xmodmap

I'll look it up, thanks.

http://www.wlug.org.nz/XFree86KeyboardMouseNotes

Awesome. thanks a lot.

do anyone of you know if it is possible to have the partition table on a file and insert that to the kernel instead of using actual MBR from harddrive?

what would the point be?

booting from usb keyring and leaving MBR with only a windows partition to boot, as a part of disk encryption

obscurity is never a good security measure

I don't see the connection.

without usb keyring it is impossible to boot and readout partition table

oh ,you mean "hidden partitions" on teh disk? have fun patching the kernel.

if you want encryption, create a large file on a normal partition with a normal filesystem, adn then mount the file using aesloop and format it

i understood malex that was his idea

note that software can in theory examine the "empty" space and notice there's a filesystem on it.

that's the idea, luks device mapper or something

not empty urandom filled or encrypted

no zero parity bits

wheter there is a partition or not doesn't matter. it's how you use it that does. if it's encrypted, it's encrypted. might as well have a sane partition table

if it's empty or filled with random data it's NOT A FILESYSTEM.

even an encrypted filesystem ahs a partition and a signature. taht's how the kernel can know there's a filesystem there. if you're talking about an arbitrary non-partition disk block in empty space, have fun writing the driver.

i am not

the security nuts people I know, simply have a normal system install, and then their home directory is aesloop mounted file on the normal drive. They keep all things that should be secure in the aesloop home.

malex suggested only having the partition table known on the bootable usb keyring, not on the harddrive itself, kid of make it impossible to prove exist

doesn't sound useful to me at all

that's a completely unnecessary step.

If my friend things aesloop is a good solution for it, I have no reason to doubt it.

s/things/thinks/

ok, thanks for giving your point =)

After a tiring search in google, I still can't find the CLI command to open a port??

anyone know the syntax offhand?

There isnt one!
"Opening a port" means starting an application that binds to the port to listen for requests.

Ok, then the SELinux policy closes or blocks ports correct?

No idea what selinux does

ok thanks I'll just have to do it from the GUI when I am at that box
thx again ardya.. have a good one

Hi Guys.. I'm having problems printing a PostScript docuemnt, very weird.

From the CLI if I do 'lpr file.txt' it prints OK.. when i do 'lpr file.ps' I don't get anything coming out of the printer.. any idea what's up? It only happens with PostScript docs…

Probably your printcap has a filter set up for postscript, but whatever it calls to interpret postscript is not installed.

Unless it's a PS printer, of course. bu in that case "lpr textfile" wouldn't work without manual setup to convert TEXT to postscript.
it is a postscript printer

I'm printing to it with a PPD driver
check your printcap, make sure it's not doing something stupid.
a ppd isn't a driver, really, just a description of printer capabilities.

I see
Durtro, my printing skills really suck.. How do I check my printcap?
the printing howto will tell you about that, and the printcap manpage.
thanks Durtro